Merging upstream version 4.66.4:
- any optional non-boolean CLI arguments are passed through python's eval, allowing arbitrary code execution [CVE-2024-34062] (Closes: #1070372). Signed-off-by: Daniel Baumann <daniel@debian.org>
This commit is contained in:
parent
cc4eb343db
commit
10170fb64c
GPG key ID:
FBB4F0E80A80222F
18 changed files with 64 additions and 52 deletions
|
|
@ -2,7 +2,7 @@ default_language_version:
|
|||
python: python3
|
||||
repos:
|
||||
- repo: https://github.com/pre-commit/pre-commit-hooks
|
||||
rev: v4.5.0
|
||||
rev: v4.6.0
|
||||
hooks:
|
||||
- id: check-added-large-files
|
||||
- id: check-case-conflict
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue